Adobe has released security updates to address several vulnerabilities in its popular multimedia delivery system Adobe Flash Player. Adobe states that the exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system. Updates include those for Adobe Flash Player for Windows, Macintosh, and Linux and for Adobe AIR for Windows, Macintosh, Android and iOS.

Symantec has released a new version of Symantec Endpoint Encryption to address a vulnerability that may allow an attacker to take control of an affected system.

Google has released a security update for its popular web browser Google Chrome. Google’s Stable Channel Update has stated that this update contains an update to Adobe Flash Player and several security fixes. It has been reported that one of the vulnerabilities that have been addressed allows a remote attacker to take control of an affected system. Therefore, it is imperative that users and administrators run this update on their systems.

Developers of the OpenSSL project have released several new patches for most of its popular versions to address several vulnerabilities that existed in several versions. It was reported that the exploitation of one of these vulnerabilities could allow an attacker to cause a Denial of Service condition. Updates are available for four versions of OpenSSL. The OpenSSL Project states that the exploitation of one of these vulnerabilities could allow an attacker to cause a Denial of Service condition.

The popular VMware suite of virtualisation products has been issued security updates to address a vulnerability. VMware states that vCenter, vCloud Director, and Horizon View have been issued security updates in this wave. VMware also states that the exploitation of this vulnerability may allow an attacker to obtain sensitive information. Users and administrators are therefore encouraged to update their products as early as possible.

Adobe has released a security update for LiveCycle Data Services that includes an updated version of BlazeDS. The new version resolves an important server-side request forgery vulnerability. Adobe recommends that users and administrators apply the available updates as early as possible.

ColdFusion, Adobe’s rapid web development platform has seen a security hotfix released for versions 10 and 11. This hotfix resolves two input validation issues that could be used in reflected cross-site scripting (XSS) attacks. This hotfix also includes an updated version of BlazeDS that resolves an important server side request forgery vulnerability. It is recommended that users and administrators apply the hotfix as early as possible.

Adobe has released a security update for Adobe Premiere Clip for iOS, a mobile app that lets users create and edit videos on their iPhone and iPad devices and upload them to a desktop for further editing. Adobe states that his update addresses an input validation issue in the mobile application. It is recommended that users update their product installation as early as possible.

Google Inc. has released a security update for their popular Google Chrome browser. Chrome 47 for the Windows, Macintosh and Linux platforms have been introduced. While the new version contains several fixes and improvements, one of the main security changes was addressing a vulnerability that could allow a remote attacker to take control of an affected system. This update is therefore to be considered Critical and users and administrators are advised to upgrade their systems as early as possible.

Adobe has released a security update for its popular multimedia delivery system, Adobe Shockwave Player. This update addresses a single Critical vulnerability. Adobe states that the exploitation of this vulnerability has the potential to allow a remote attacker to take control of an affected system. It is recommended that all installed versions of Adobe Shockwave Player be updated with immediate effect.

footerimage

Member of

logo apcertfirst logo-2

Collaborated with

apwg2ICTA logo2ack cymru

Our Partners
lanka-certify-logoDark-Lab-Logo2contact